A binary is an executable binary files identified by its hash code. Platforms:

Name

Type

Windows black.png
Mac black.png

Properties

application_category

string

Windows black.png
Mac black.png
Mobile gray disabled.png

SE

Indicates the category of the application:

  • '-': Not yet tagged;

  • Unknown: Not categorized by Nexthink Library.

application_company

string

Windows black.png
Mac black.png
Mobile gray disabled.png

Application company

application_name

string

Windows black.png
Mac black.png
Mobile gray disabled.png

Application name

architecture

enum

Windows black.png
Mac black.png
Mobile gray disabled.png

Executable architecture (32/64 bit)

average_cpu_usage

permill

Windows black.png
Mac gray disabled.png
Mobile gray disabled.png

Average CPU usage for the binary

average_memory_usage

byte

Windows black.png
Mac gray disabled.png
Mobile gray disabled.png

NU

Average memory usage for the binary

average_number_of_graphical_handles

integer

Windows black.png
Mac gray disabled.png
Mobile gray disabled.png

NU

Average number of graphical handles (GDI)

company

string

Windows black.png
Mac black.png
Mobile gray disabled.png

Executable company

database_usage

permill

Windows black.png
Mac black.png
Mobile gray disabled.png

Percentage of the database used by information related with the binary.

description

string

Windows black.png
Mac gray disabled.png
Mobile gray disabled.png

Description as it appears in the binary file.

executable_name

string

Windows black.png
Mac black.png
Mobile gray disabled.png

Executable name

file_size

byte

Windows black.png
Mac black.png
Mobile gray disabled.png

Binary file size

first_seen

datetime

Windows black.png
Mac black.png
Mobile gray disabled.png

NU

First time activity of the binary was recorded on any device.

hash

md5

Windows black.png
Mac black.png
Mobile gray disabled.png

Hash code of the binary (MD5)

id

identifier

Windows black.png
Mac black.png
Mobile gray disabled.png

Unique binary identifier

last_seen

datetime

Windows black.png
Mac black.png
Mobile gray disabled.png

NU

Last time activity of the binary was recorded on any device.

paths

path

Windows black.png
Mac black.png
Mobile gray disabled.png

List of paths of the binary

platform

enum

Windows black.png
Mac black.png
Mobile gray disabled.png

The platform (operating system family) on which the binary is running.

sha1

sha1

Windows black.png
Mac black.png
Mobile gray disabled.png

SHA-1 hash code of the binary

sha256

sha256

Windows black.png
Mac black.png
Mobile gray disabled.png

SHA-256 hash code of the binary

storage_policy

enum

Windows black.png
Mac black.png
Mobile gray disabled.png

Event storage policy for the binary (connection and execution, execution-only or none)

threat_level

enum

Windows black.png
Mac black.png
Mobile gray disabled.png

SE

Indicates the threat level of the binary:

  • '-': Not yet tagged;

  • none detected: No known threat;

  • low: low threat;

  • intermediate: Intermediate threat;

  • high: high threat.

total_active_days

day

Windows black.png
Mac black.png
Mobile gray disabled.png

Total number of days the binary was active.

user_interface

boolean

Windows black.png
Mac gray disabled.png
Mobile gray disabled.png

Application has interactive user interface

version

version

Windows black.png
Mac black.png
Mobile gray disabled.png

Version of the binary